Skip to content
QuantumScanReporte público de escaneo

Repositorio

jpadilla/pyjwt

Escaneado el 5 jun 2026

73

Puntuación de riesgo/ 100

Riesgo alto

Resumen

PyJWT library relies heavily on quantum-vulnerable cryptographic algorithms including ECDSA (multiple NIST curves and secp256k1) and RSA for JWT signing operations. With 90 high-severity findings across cryptographic implementation files, the library faces significant post-quantum security risks that will impact all downstream applications using JWT authentication.

Crítico

0

Alto

90

Medio

0

Bajo

2

Hallazgos principales

  • AltoECDSA

    jwt/algorithms.py:41

    ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)

  • AltoNIST P-256 curve

    jwt/algorithms.py:43

    ML-KEM or ML-DSA

  • AltoNIST P-384 curve

    jwt/algorithms.py:44

    ML-KEM or ML-DSA

  • AltoNIST P-521 curve

    jwt/algorithms.py:45

  • AltoElliptic Curve Cryptography

    jwt/algorithms.py:46

+ 87 hallazgos más en el reporte completo

Escanea tu propio repositorio

Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.

Iniciar un escaneo gratis